Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/985c1550-6da1-4adc-830d-6267cacd5f4b/e5106b1f3c268f4cad09c64d2f1b66dad939e6f1.roa
File:                     e5106b1f3c268f4cad09c64d2f1b66dad939e6f1.roa (raw, json)
Hash identifier:          AELzPpBQeTD0WzFb+KaVqzPsAlUmAb1U+tTWWDkp4yc=
Subject key identifier:   C9:47:89:03:8C:40:2E:08:88:4C:53:80:B5:E0:7D:84:1C:2B:41:05
Certificate issuer:       /CN=fd4c114c1b8bf7133cf870558849bd65d2fcfdb0
Certificate serial:       0DB8F9
Authority key identifier: 81:8E:3F:2A:F4:FC:E0:FD:4A:8F:F6:A3:A1:8E:BD:5D:C1:95:36:12
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd4c114c1b8bf7133cf870558849bd65d2fcfdb0.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/985c1550-6da1-4adc-830d-6267cacd5f4b/e5106b1f3c268f4cad09c64d2f1b66dad939e6f1.roa
Signing time:             Wed 24 Mar 2021 14:48:07 +0000
ROA not before:           Wed 24 Mar 2021 14:48:07 +0000
ROA not after:            Tue 24 Mar 2026 14:48:07 +0000
asID:                     263701
IP address blocks:        2803:bb80::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/985c1550-6da1-4adc-830d-6267cacd5f4b/fd4c114c1b8bf7133cf870558849bd65d2fcfdb0.crl
                          rsync://repository.lacnic.net/rpki/lacnic/985c1550-6da1-4adc-830d-6267cacd5f4b/fd4c114c1b8bf7133cf870558849bd65d2fcfdb0.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd4c114c1b8bf7133cf870558849bd65d2fcfdb0.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 26 Feb 2024 16:36:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 899321 (0xdb8f9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fd4c114c1b8bf7133cf870558849bd65d2fcfdb0
        Validity
            Not Before: Mar 24 14:48:07 2021 GMT
            Not After : Mar 24 14:48:07 2026 GMT
        Subject: CN=e5106b1f3c268f4cad09c64d2f1b66dad939e6f1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:bc:ba:58:63:2c:56:22:e6:ac:c5:87:8f:7f:
                    54:74:6c:8a:5c:a8:80:98:01:29:bc:20:1f:fc:30:
                    2a:20:df:96:69:73:9a:77:c7:3b:ab:d8:3d:34:7e:
                    ee:13:3a:55:ca:ce:f5:4f:a1:10:3d:44:86:0e:20:
                    44:75:20:5e:b5:02:fb:c2:3d:4a:97:b1:7c:55:69:
                    5d:81:58:8b:d3:58:6c:2b:3f:6c:96:5e:16:d0:98:
                    27:50:cd:62:67:d7:8b:89:1e:d9:e2:4e:a9:75:1f:
                    11:30:01:6e:70:5b:a9:91:48:cb:bd:68:ce:95:2c:
                    07:9e:68:05:d5:79:6e:6b:76:7f:69:4b:bb:ea:a2:
                    1a:28:7e:e2:45:45:a6:36:84:58:cc:8e:33:0b:ef:
                    cf:68:93:b7:8f:1e:a4:6c:f8:b0:c6:fc:7b:b2:90:
                    e6:4b:7b:d1:11:46:61:78:a0:cb:45:72:4f:fc:e1:
                    f2:d6:00:44:0b:73:6e:9d:4e:53:10:28:39:39:9d:
                    b1:47:50:3a:86:8c:eb:ef:72:e7:5a:58:c8:ce:5a:
                    ec:0f:bc:67:ca:65:da:44:5b:3e:05:1f:e4:55:cd:
                    0d:c4:69:39:7d:b2:a0:60:95:6d:ed:e6:be:a6:77:
                    14:cf:2d:0a:8b:48:33:90:fe:6d:99:cd:60:5f:3a:
                    df:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:47:89:03:8C:40:2E:08:88:4C:53:80:B5:E0:7D:84:1C:2B:41:05
            X509v3 Authority Key Identifier:
                keyid:81:8E:3F:2A:F4:FC:E0:FD:4A:8F:F6:A3:A1:8E:BD:5D:C1:95:36:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd4c114c1b8bf7133cf870558849bd65d2fcfdb0.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/985c1550-6da1-4adc-830d-6267cacd5f4b/e5106b1f3c268f4cad09c64d2f1b66dad939e6f1.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/985c1550-6da1-4adc-830d-6267cacd5f4b/fd4c114c1b8bf7133cf870558849bd65d2fcfdb0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:bb80::/32

    Signature Algorithm: sha256WithRSAEncryption
         96:ff:bd:16:e3:a8:d9:38:35:02:2e:fa:10:cd:6b:27:5f:3c:
         d8:0c:f3:01:37:dc:ac:f6:87:6d:d2:f1:50:04:56:14:82:f5:
         c4:68:c1:df:26:01:5a:b9:ef:34:45:ef:af:bd:84:9e:db:77:
         d2:a8:d8:8c:1f:5f:1f:0f:db:d7:4e:b4:8c:78:81:d5:b6:68:
         af:6c:60:c1:04:42:a1:b9:ee:93:58:4b:f7:1d:e8:57:39:ec:
         a7:05:d6:a6:10:07:2e:45:7d:81:1b:9e:8d:88:f9:08:e9:8f:
         eb:a1:43:5e:cf:f9:be:76:81:f8:b9:08:b8:d3:6a:e3:bc:5a:
         f0:a9:f1:4e:d7:40:8b:2c:61:98:31:b8:21:47:53:13:0d:0a:
         9b:be:07:10:bd:e2:9a:c2:4f:d3:26:95:21:75:bd:09:74:57:
         b0:f4:22:4c:3d:9d:ac:3b:30:92:34:34:27:6f:59:23:b9:5e:
         e6:81:d2:ef:e2:dd:41:8b:2e:b9:fd:83:7d:1b:47:d6:13:55:
         21:71:21:5d:14:4b:fa:73:37:e0:ee:ef:7b:63:48:32:18:e3:
         7e:2a:53:35:af:24:17:3c:77:aa:54:a5:be:a0:7b:78:5a:9d:
         a1:79:4a:a2:fa:30:b1:c2:43:0e:52:34:62:16:23:d8:b5:1f:
         67:95:7e:87
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgIDDbj5MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGZk
NGMxMTRjMWI4YmY3MTMzY2Y4NzA1NTg4NDliZDY1ZDJmY2ZkYjAwHhcNMjEwMzI0
MTQ0ODA3WhcNMjYwMzI0MTQ0ODA3WjAzMTEwLwYDVQQDEyhlNTEwNmIxZjNjMjY4
ZjRjYWQwOWM2NGQyZjFiNjZkYWQ5MzllNmYxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsLy6WGMsViLmrMWHj39UdGyKXKiAmAEpvCAf/DAqIN+WaXOa
d8c7q9g9NH7uEzpVys71T6EQPUSGDiBEdSBetQL7wj1Kl7F8VWldgViL01hsKz9s
ll4W0JgnUM1iZ9eLiR7Z4k6pdR8RMAFucFupkUjLvWjOlSwHnmgF1Xlua3Z/aUu7
6qIaKH7iRUWmNoRYzI4zC+/PaJO3jx6kbPiwxvx7spDmS3vREUZheKDLRXJP/OHy
1gBEC3NunU5TECg5OZ2xR1A6hozr73LnWljIzlrsD7xnymXaRFs+BR/kVc0NxGk5
fbKgYJVt7ea+pncUzy0Ki0gzkP5tmc1gXzrfeQIDAQABo4ICXDCCAlgwHQYDVR0O
BBYEFMlHiQOMQC4IiExTgLXgfYQcK0EFMB8GA1UdIwQYMBaAFIGOPyr0/OD9So/2
o6GOvV3BlTYSMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZmQ0YzEx
NGMxYjhiZjcxMzNjZjg3MDU1ODg0OWJkNjVkMmZjZmRiMC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvOTg1YzE1NTAtNmRhMS00YWRjLTgzMGQtNjI2N2Nh
Y2Q1ZjRiL2U1MTA2YjFmM2MyNjhmNGNhZDA5YzY0ZDJmMWI2NmRhZDkzOWU2ZjEu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy85ODVjMTU1MC02ZGExLTRhZGMtODMwZC02MjY3
Y2FjZDVmNGIvZmQ0YzExNGMxYjhiZjcxMzNjZjg3MDU1ODg0OWJkNjVkMmZjZmRi
MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQR
MA8wDQQCAAIwBwMFACgDu4AwDQYJKoZIhvcNAQELBQADggEBAJb/vRbjqNk4NQIu
+hDNaydfPNgM8wE33Kz2h23S8VAEVhSC9cRowd8mAVq57zRF76+9hJ7bd9Ko2Iwf
Xx8P29dOtIx4gdW2aK9sYMEEQqG57pNYS/cd6Fc57KcF1qYQBy5FfYEbno2I+Qjp
j+uhQ17P+b52gfi5CLjTauO8WvCp8U7XQIssYZgxuCFHUxMNCpu+BxC94prCT9Mm
lSF1vQl0V7D0Ikw9naw7MJI0NCdvWSO5XuaB0u/i3UGLLrn9g30bR9YTVSFxIV0U
S/pzN+Du73tjSDIY434qUzWvJBc8d6pUpb6ge3hanaF5SqL6MLHCQw5SNGIWI9i1
H2eVfoc=
-----END CERTIFICATE-----
Generated at Fri Feb 23 20:09:57 2024 by rpki-client on console-ams.rpki-client.org